Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 871948

Summary: =sys-kernel/gentoo-sources-{5.10.144, 5.4.214, 4.19.259, 4.14.294, 4.9.329} stabilization
Product: Gentoo Linux Reporter: Mike Pagano <mpagano>
Component: StabilizationAssignee: Gentoo Kernel Bug Wranglers and Kernel Maintainers <kernel>
Status: RESOLVED OBSOLETE    
Severity: normal CC: hppa
Priority: Normal Keywords: CC-ARCHES, STABLEREQ
Version: unspecifiedFlags: nattka: sanity-check-
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
sys-kernel/gentoo-sources-5.10.144 sys-kernel/gentoo-sources-5.4.214 sys-kernel/gentoo-sources-4.19.259 sys-kernel/gentoo-sources-4.14.294 sys-kernel/gentoo-sources-4.9.329
 Runtime testing required: ---

Description Mike Pagano gentoo-dev 2022-09-19 22:18:01 UTC 
Arch Teams, please stabilize this set of kernels.
Comment 1 Agostino Sarubbo gentoo-dev 2022-09-20 08:47:52 UTC 
amd64 done
Comment 2 Agostino Sarubbo gentoo-dev 2022-09-20 08:48:28 UTC 
arm done
Comment 3 Agostino Sarubbo gentoo-dev 2022-09-20 08:49:03 UTC 
arm64 done
Comment 4 Agostino Sarubbo gentoo-dev 2022-09-20 08:49:57 UTC 
sparc done
Comment 5 Agostino Sarubbo gentoo-dev 2022-09-20 08:50:40 UTC 
x86 done
Comment 6 Arthur Zamarin archtester Gentoo Infrastructure gentoo-dev Security 2022-09-20 18:22:10 UTC 
ppc done
Comment 7 Arthur Zamarin archtester Gentoo Infrastructure gentoo-dev Security 2022-09-20 18:22:12 UTC 
ppc64 done
Comment 8 Mike Pagano gentoo-dev 2022-09-21 11:30:10 UTC 
Apologies, a critical fix is in this version.
Comment 9 Agostino Sarubbo gentoo-dev 2022-09-21 12:25:28 UTC 
ppc done
Comment 10 Agostino Sarubbo gentoo-dev 2022-09-21 12:26:26 UTC 
ppc64 done
Comment 11 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-09-22 01:29:01 UTC 
amd64 done
Comment 12 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-09-22 01:29:03 UTC 
x86 done
Comment 13 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-09-22 01:29:05 UTC 
arm done
Comment 14 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-09-22 01:29:07 UTC 
arm64 done
Comment 15 Agostino Sarubbo gentoo-dev 2022-09-22 07:43:52 UTC 
sparc done
Comment 16 NATTkA bot gentoo-dev 2022-10-15 22:28:16 UTC Comment hidden (obsolete)
Comment 17 NATTkA bot gentoo-dev 2022-10-15 22:32:17 UTC 
Unable to check for sanity:

> no match for package: sys-kernel/gentoo-sources-5.10.144
Comment 18 Mike Pagano gentoo-dev 2022-10-15 22:38:53 UTC 
This is superseded by an auto-stabilization for a kernel security bug:

See:
https://lwn.net/ml/oss-security/20221013101046.GB20615@suse.de/


CVE-2022-41674: fix u8 overflow in cfg80211_update_notlisted_nontrans
        (max 256 byte overwrite) (RCE)
CVE-2022-42719: wifi: mac80211: fix MBSSID parsing use-after-free
        use after free condition (RCE)
CVE-2022-42720: wifi: cfg80211: fix BSS refcounting bugs
        ref counting use-after-free possibilities (RCE)
CVE-2022-42721: wifi: cfg80211: avoid nontransmitted BSS list corruption
    list corruption, according to Johannes will however just make it
    endless loop (DOS)
CVE-2022-42722: wifi: mac80211: fix crash in beacon protection for
    P2P-device NULL ptr dereference crash (DOS)